Lucene search
K

20 matches found

CVE
CVE
added yesterday3 views

CVE-2026-13878

CVE-2026-13878 : A use-after-free in Bluetooth handling on Mac was reported in Google Chrome versions prior to 150.0.7871.47. A remote attacker who has already compromised the renderer process could potentially perform a sandbox escape by presenting a crafted HTML page. Impact is limited to Chrom...

5.8AI score
Exploits0References2
NVD
NVD
added 2026/06/11 10:16 p.m.9 views

CVE-2026-12009

Insufficient validation of untrusted input in Accessibility in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00246EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.21 views

Google Chrome < 149.0.7827.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 149.0.7827.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202606stable-channel-update-for-desktop01962725236 advisory. - Use after free in Views in Google Chrome on Windows prior to...

9.6CVSS6.1AI score0.00287EPSS
Exploits0References55
NVD
NVD
added 2026/06/09 12:16 a.m.17 views

CVE-2026-11686

Insufficient validation of untrusted input in Dawn in Google Chrome on macOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS0.00171EPSS
Exploits0References2
OSV
OSV
added 2026/06/09 12:16 a.m.5 views

DEBIAN-CVE-2026-11639

Use after free in Compositing in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

7.5CVSS6AI score0.00275EPSS
Exploits0References1
CVE
CVE
added 2026/06/08 11:28 p.m.29 views

CVE-2026-11698

CVE-2026-11698 affects Google Chrome on macOS. The connected documents confirm a use-after-free in the Bluetooth subsystem of Chrome/Chromium, leading to a potential heap corruption condition when processing a crafted HTML page. The vulnerability is triggered in Chrome builds prior to version 149...

8.8CVSS5.6AI score0.00203EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/08 11:27 p.m.35 views

CVE-2026-11690

Out of bounds read and write in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00214EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.6 views

CVE-2026-11655

Integer overflow in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.6AI score0.00242EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.6 views

CVE-2026-11639

Use after free in Compositing in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

7.5CVSS6AI score0.00275EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2026/06/07 4:43 a.m.6 views

SUSE CVE-2026-11158

Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript command. Chromium security severity: Medium...

8.6CVSS5.4AI score0.00083EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.33 views

CVE-2026-9996

Out of bounds read in WebRTC in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00191EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/28 10:25 p.m.8 views

CVE-2026-9996

Out of bounds read in WebRTC in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00191EPSS
Exploits0References2
NVD
NVD
added 2026/05/06 7:16 p.m.6 views

CVE-2026-7903

Integer overflow in ANGLE in Google Chrome on Mac,Windows prior to 148.0.7778.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00224EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/06 6:12 p.m.6 views

CVE-2026-7978

Inappropriate implementation in Companion in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. Chromium security severity: Medium...

5.8AI score0.00237EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/08 9:20 p.m.3 views

CVE-2026-5868

Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.5AI score0.00339EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-16080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing check for popup window handling in Fullscreen in Google Chrome on macOS prior to 69.0.3497.81 allowed a remote attacker to spoof the contents of the...

6.5CVSS7.4AI score0.01363EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:56 a.m.5 views

SUSE CVE-2020-16038

Use after free in media in Google Chrome on OS X prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.2AI score0.0124EPSS
Exploits0References9
OSV
OSV
added 2020/11/03 3:15 a.m.1 views

UBUNTU-CVE-2020-15977

Insufficient data validation in dialogs in Google Chrome on OS X prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page...

6.5CVSS7AI score0.01468EPSS
Exploits0References2
OSV
OSV
added 2019/01/09 7:29 p.m.3 views

CVE-2018-6097

Incorrect handling of asynchronous methods in Fullscreen in Google Chrome on macOS prior to 66.0.3359.117 allowed a remote attacker to enter full screen without showing a warning via a crafted HTML page...

6.5CVSS5.8AI score
Exploits0References6
OSV
OSV
added 2019/01/09 7:29 p.m.3 views

CVE-2018-16080

A missing check for popup window handling in Fullscreen in Google Chrome on macOS prior to 69.0.3497.81 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS7.4AI score
Exploits0References5
Rows per page
Query Builder